21 matches found
EUVD-2026-32182
Authorization Bypass Through User-Controlled Key vulnerability in WP Wham Checkout Files Upload for WooCommerce checkout-files-upload-woocommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Checkout Files Upload for WooCommerce: from n/a through =...
CVE-2026-42725
Authorization Bypass Through User-Controlled Key vulnerability in WP Wham Checkout Files Upload for WooCommerce checkout-files-upload-woocommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Checkout Files Upload for WooCommerce: from n/a through =...
EUVD-2025-17216
Malicious code in bioql PyPI...
EUVD-2025-11339
Malicious code in bioql PyPI...
EUVD-2025-11711
Malicious code in bioql PyPI...
EUVD-2025-9069
Malicious code in bioql PyPI...
EUVD-2022-33763
Malicious code in bioql PyPI...
EUVD-2023-51759
Malicious code in bioql PyPI...
CVE-2025-30950
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WP Wham All Currencies for WooCommerce woocommerce-all-currencies allows Stored XSS.This issue affects All Currencies for WooCommerce: from n/a through = 2.4.3...
CVE-2025-30950
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WP Wham All Currencies for WooCommerce woocommerce-all-currencies allows Stored XSS.This issue affects All Currencies for WooCommerce: from n/a through = 2.4.3...
CVE-2025-30950
CVE-2025-30950 is a stored XSS vulnerability in the WordPress plugin “All Currencies for WooCommerce” (WP All Currencies). The issue arises from improper neutralization of input during web page generation, enabling stored cross-site scripting. Affected versions are listed as from n/a through 2.4....
PT-2025-24172 · WordPress · Wp Wham All Currencies For Woocommerce
Name of the Vulnerable Software and Affected Versions: WP Wham All Currencies for WooCommerce versions n/a through 2.4.4 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows Stored XSS. This means that a...
CVE-2025-39520
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WP Wham Checkout Files Upload for WooCommerce checkout-files-upload-woocommerce allows Stored XSS.This issue affects Checkout Files Upload for WooCommerce: from n/a through = 2.2.0...
CVE-2025-32628
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WP Wham Crowdfunding for WooCommerce crowdfunding-for-woocommerce allows Reflected XSS.This issue affects Crowdfunding for WooCommerce: from n/a through = 3.1.12...
CVE-2025-32628
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WP Wham Crowdfunding for WooCommerce crowdfunding-for-woocommerce allows Reflected XSS.This issue affects Crowdfunding for WooCommerce: from n/a through = 3.1.12...
CVE-2025-39520
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WP Wham Checkout Files Upload for WooCommerce checkout-files-upload-woocommerce allows Stored XSS.This issue affects Checkout Files Upload for WooCommerce: from n/a through = 2.2.0...
CVE-2025-30917
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WP Wham SKU Generator for WooCommerce sku-for-woocommerce allows Reflected XSS.This issue affects SKU Generator for WooCommerce: from n/a through = 1.6.2...
PT-2025-14069 · WordPress · Wp Wham Sku Generator For Woocommerce
Name of the Vulnerable Software and Affected Versions: WP Wham SKU Generator for WooCommerce versions 1.6.2 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, allowing Reflected XSS. This enables...
CVE-2023-47660
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in WP Wham Product Visibility by Country for WooCommerce plugin = 1.4.9 versions...
CVE-2023-47660
CVE-2023-47660 : Auth. (admin+) Stored Cross-Site Scripting (XSS) in the WordPress plugin Product Visibility by Country for WooCommerce (WP) up to version 1.4.9 . Public writeups in connected documents confirm vulnerability details and affected product/version, with multiple sources naming the at...